Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/d3e682-3370-4271-9437-785475c22c9b/1/bP88X3ek8g1njObmWGdlwPN0pDU.roa
File: bP88X3ek8g1njObmWGdlwPN0pDU.roa (raw, json)
Hash identifier: SMvgA+xPUGRIxpCZCWBJiOnkO3NAzCdH0xfYEMjGzzQ=
Subject key identifier: 6C:FF:3C:5F:77:A4:F2:0D:67:8C:E6:E6:58:67:65:C0:F3:74:A4:35
Certificate issuer: /CN=69eb002f000bd426e4a640c71d6c0201b5050e34
Certificate serial: 0573A590
Authority key identifier: 69:EB:00:2F:00:0B:D4:26:E4:A6:40:C7:1D:6C:02:01:B5:05:0E:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aesALwAL1CbkpkDHHWwCAbUFDjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/d3e682-3370-4271-9437-785475c22c9b/1/bP88X3ek8g1njObmWGdlwPN0pDU.roa
Signing time: Sat 01 Jan 2022 01:57:00 +0000
ROA not before: Sat 01 Jan 2022 01:57:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61967
IP address blocks: 185.20.232.0/22 maxlen: 22
91.220.244.0/24 maxlen: 24
45.137.92.0/22 maxlen: 22
2a04:1600::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91465104 (0x573a590)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69eb002f000bd426e4a640c71d6c0201b5050e34
Validity
Not Before: Jan 1 01:57:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6cff3c5f77a4f20d678ce6e6586765c0f374a435
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:da:28:86:29:ec:78:06:ce:fd:c0:da:70:57:
75:55:48:25:89:f9:90:9b:17:d7:bf:57:aa:1e:a2:
75:97:a2:07:24:2a:c1:aa:82:f0:92:9e:2c:49:30:
bc:b0:7d:8f:1c:7d:5e:b3:42:9e:be:e4:a6:53:ca:
2a:b7:6c:1d:9b:bd:c9:9a:77:9a:f9:16:a0:97:3b:
3e:ea:67:ac:7b:da:7e:46:0c:5f:d2:33:cb:7f:39:
e7:b0:aa:20:2f:a5:90:3b:e5:bd:ed:84:83:32:d8:
01:20:f0:35:12:58:7e:d4:b9:3e:eb:61:6a:38:86:
b7:51:e4:44:a4:70:5b:7b:ff:47:22:19:56:17:16:
35:c5:69:17:82:33:55:e1:5b:50:94:bc:dd:41:5d:
9c:5d:b9:65:d5:3e:c8:03:65:ff:59:6e:36:ff:c5:
12:7f:72:c0:e4:1a:ac:bb:ad:44:aa:59:0f:d5:6d:
44:de:59:0d:a8:d0:08:3d:7f:32:71:93:e4:da:ec:
ef:35:5f:8b:19:cd:63:1d:83:3e:23:97:91:00:84:
61:e3:77:83:a2:44:6b:6b:cd:46:29:8e:ef:f6:02:
a7:81:75:da:2c:e7:fa:c3:f4:0b:46:6f:5d:6e:43:
1f:67:a0:c8:98:64:99:38:55:e7:d3:d8:f3:ee:b3:
b8:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:FF:3C:5F:77:A4:F2:0D:67:8C:E6:E6:58:67:65:C0:F3:74:A4:35
X509v3 Authority Key Identifier:
keyid:69:EB:00:2F:00:0B:D4:26:E4:A6:40:C7:1D:6C:02:01:B5:05:0E:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aesALwAL1CbkpkDHHWwCAbUFDjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/d3e682-3370-4271-9437-785475c22c9b/1/bP88X3ek8g1njObmWGdlwPN0pDU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/d3e682-3370-4271-9437-785475c22c9b/1/aesALwAL1CbkpkDHHWwCAbUFDjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.92.0/22
91.220.244.0/24
185.20.232.0/22
IPv6:
2a04:1600::/29
Signature Algorithm: sha256WithRSAEncryption
80:03:62:c0:de:de:5e:5a:e5:f8:88:96:25:45:7f:94:a0:24:
69:e1:f6:5d:8a:51:75:1a:e1:fc:30:86:ea:38:78:12:16:ba:
b9:62:9b:98:95:a6:ca:0c:1a:36:8a:0d:86:e1:0e:3b:34:3f:
7a:84:90:2d:91:27:45:55:16:98:fe:9a:dc:84:c7:ad:84:72:
4b:85:da:c0:8c:54:14:ba:72:6a:63:6c:46:57:e2:0b:aa:82:
03:f7:ca:0d:f9:93:5b:a0:04:3b:3f:8e:c2:7d:70:92:ea:d9:
17:34:5c:1e:c8:f0:5c:27:43:c0:aa:00:39:a9:0d:71:69:23:
bc:5c:39:be:40:51:0b:ca:b9:79:e1:c8:75:de:2e:52:d3:ed:
17:ec:8b:e8:8c:17:4f:ab:da:18:65:a2:3f:4e:81:79:bc:03:
e7:fc:3d:5c:ab:22:57:00:54:8d:70:1b:a7:c8:a0:a6:d6:0c:
e9:c1:5f:ff:7b:a7:bf:7d:20:19:78:f9:7f:dd:d6:bb:93:fe:
d3:28:4b:87:11:11:47:da:e7:a8:fc:c9:85:09:87:73:08:4a:
3a:8b:d1:2f:c0:ac:90:30:9a:b5:4b:80:ef:1d:02:fa:0a:b4:
54:5e:8c:45:64:a9:24:a7:4a:86:5f:5e:dd:04:93:df:6d:e2:
4d:79:db:63
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:41:53 2023 by rpki-client on console-fra.rpki-client.org